DescriptionEnterprise Products Partners L.P. is one of the largest publicly traded partnerships and a leading North American provider of midstream energy services to producers and consumers of natural gas, NGLs, crude oil, refined products and petrochemicals. Our services include: natural gas gathering, treating, processing, transportation and storage; NGL transportation, fractionation, storage and import and export terminals; crude oil gathering, transportation, storage and terminals; petrochemical and refined products transportation, storage and terminals; and a marine transportation business that operates primarily on the United States inland and Intracoastal Waterway systems. The partnership's assets include approximately 50,000 miles of pipelines; 260 million barrels of storage capacity for NGLs, crude oil, refined products and petrochemicals; and 14 billion cubic feet of natural gas storage capacity.
The Cybersecurity Operations Analyst is a member of the IT Security & Compliance team responsible for monitoring, triaging, and responding to security events across the organization's hybrid on-premises and cloud environments. This role focuses on detection, analysis, and incident response, while supporting continuous improvement of SOC processes and security monitoring capabilities.
The Cybersecurity Operations Analyst works closely with IT, Cloud, and Security teams to ensure timely detection and response to security threats, accurate documentation of incidents, and clear communication of security risk and operational status. Responsibilities include, but are not limited to:
- Monitor and analyze security alerts from SIEM, EDR, NDR, and cloud-native security platforms
- Perform independent event triage, validation, and incident identification
- Execute incident response actions as necessary
- Monitor and respond to security events across hybrid environments, including on-premises infrastructure and cloud platforms
- Support Cloud Detection and Response (CDR) activities by reviewing cloud security alerts and audit logs
- Contribute to improvements in enterprise-wide security log collection, normalization, correlation, and alert quality
- Collaborate with the Security team to improve and automate SOC processes and workflows
- Document incidents, investigations, response actions, and operational procedures
- Assist with producing operational metrics and reports to communicate security posture and trends to leadership
- Remain current on emerging threats, attacker techniques, and defensive practices relevant to hybrid enterprise environments
QualificationsThe successful candidate will meet the following qualifications:
- College degree or technical school training preferred
- Security-related certifications preferred (e.g., CompTIA Security+, GIAC)
- 3+ years of experience in a relevant information security role
- 1-2 years of experience in network, server, or endpoint/workstation administration
- Experience operating in a hybrid IT environment with on-premises and cloud infrastructure
- Active participation in professional security organizations preferred (e.g., ISSA, ISACA, InfraGard, ISAC/ISAOs)
- Security event monitoring, alert triage, and incident response
- Log analysis and development of correlation and alerting rules
- Endpoint Detection and Response (EDR) technologies
- Intrusion detection and network security monitoring
- Understanding of hybrid identity architectures
- Cloud Detection and Response (CDR) concepts and workflows
- Strong written and verbal communication skills
- Analytical thinking, troubleshooting, and problem-solving abilities
- Ability to work collaboratively in a team-based environment
Never miss an opportunity! Create an alert based on the job you applied for.
